2 matches found
CVE-2019-18930
Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users including guest account to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and downloadmgr.cgi makes it possible to enter large-sized...
CVE-2019-18930
Summary (CVE-2019-18930): Western Digital My Cloud EX2 Ultra firmware 2.31.183 is affected by a stack-based buffer overflow that allows remote code execution via web access. The flaw stems from missing size verification in a function within libscheddl.so and the handling of large f_idx inputs in ...